CVE-2025-20144

Cisco IOS XR Software Access Control List Bypass Vulnerability

Description

A vulnerability in the hybrid access control list (ACL) processing of IPv4 packets in Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass a configured ACL. This vulnerability is due to incorrect handling of packets when a specific configuration of the hybrid ACL exists. An attacker could exploit this vulnerability by attempting to send traffic through an affected device. A successful exploit could allow the attacker to bypass a configured ACL on the affected device. For more information, see the section of this advisory. Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

INFO

Published Date :

2025-03-12T16:12:39.882Z

Last Modified :

2025-03-21T20:33:28.254Z

Source :

cisco

AFFECTED PRODUCTS

The following products are affected by CVE-2025-20144 vulnerability.

Vendors	Products
Cisco	Ios Xr Ios Xr Software Ncs 540-12z20g-sys-a Ncs 540-12z20g-sys-d Ncs 540-24q2c2dd-sys Ncs 540-24q8l2dd-sys Ncs 540-24z8q2c-sys Ncs 540-28z4c-sys-a Ncs 540-28z4c-sys-d Ncs 540-6z14s-sys-d Ncs 540-6z18g-sys-a Ncs 540-6z18g-sys-d Ncs 540-acc-sys Ncs 540-fh-agg Ncs 540-fh-csr-sys Ncs 540x-12z16g-sys-a Ncs 540x-12z16g-sys-d Ncs 540x-16z4g8q2c-a Ncs 540x-16z4g8q2c-d Ncs 540x-16z8q2c-d Ncs 540x-4z14g2q-a Ncs 540x-4z14g2q-d Ncs 540x-6z18g-sys-a Ncs 540x-6z18g-sys-d Ncs 540x-8z16g-sys-a Ncs 540x-8z16g-sys-d Ncs 540x-acc-sys Ncs 5501 Ncs 5501-se Ncs 5502 Ncs 5502-se Ncs 5508 Ncs 5516 Ncs 560-4 Ncs 560-7 Ncs 57b1-5dse-sys Ncs 57b1-6d24-sys Ncs 57c1-48q6-sys Ncs 57c3-mod-sys Ncs 57d2-18dd-sys

Vendors

Products

Cisco

Ios Xr
Ios Xr Software
Ncs 540-12z20g-sys-a
Ncs 540-12z20g-sys-d
Ncs 540-24q2c2dd-sys
Ncs 540-24q8l2dd-sys
Ncs 540-24z8q2c-sys
Ncs 540-28z4c-sys-a
Ncs 540-28z4c-sys-d
Ncs 540-6z14s-sys-d
Ncs 540-6z18g-sys-a
Ncs 540-6z18g-sys-d
Ncs 540-acc-sys
Ncs 540-fh-agg
Ncs 540-fh-csr-sys
Ncs 540x-12z16g-sys-a
Ncs 540x-12z16g-sys-d
Ncs 540x-16z4g8q2c-a
Ncs 540x-16z4g8q2c-d
Ncs 540x-16z8q2c-d
Ncs 540x-4z14g2q-a
Ncs 540x-4z14g2q-d
Ncs 540x-6z18g-sys-a
Ncs 540x-6z18g-sys-d
Ncs 540x-8z16g-sys-a
Ncs 540x-8z16g-sys-d
Ncs 540x-acc-sys
Ncs 5501
Ncs 5501-se
Ncs 5502
Ncs 5502-se
Ncs 5508
Ncs 5516
Ncs 560-4
Ncs 560-7
Ncs 57b1-5dse-sys
Ncs 57b1-6d24-sys
Ncs 57c1-48q6-sys
Ncs 57c3-mod-sys
Ncs 57d2-18dd-sys

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-20144.

URL	Resource
https://blog.apnic.net/2024/09/02/crafting-endless-as-paths-in-bgp/
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ncs-hybridacl-crMZFfKQ

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact